Thought the scams were over, but...PayPal scam is back

A person in our office recieved this today. I thought these were long gone.

The actual email takes you to this page:

http://216.55.164.23/

DO NOT ENTER YOUR INFORMATION

You can see that this is very clever. All links lead to Paypal, even the jpeg is off of Paypal's server. If you look in the source, the only thing not leading to Paypal is the form submit. This is where their software gathers the email address and password. Very sneaky to untrained eye.

I wonder how many people were taken by this one.

ATNO/TW

Super Moderator

Posts: 23458

Loc: Woodbridge VA

3+ Months Ago

Great advice vetofunk... PayPal makes it very clear to members that if the address does not start with http://www.paypal.com it is not them. This is often included in legit PayPal emails:

Quote:

NEVER give your password to anyone and ONLY log in at https://www.paypal.com. Protect yourself against fraudulent websites by opening a new web browser (e.g. Internet Explorer or Netscape) and typing in the PayPal URL every time you log in to your account.

Axe

Genius

Posts: 5738

Loc: Sub-level 28

3+ Months Ago

lmao, how stupid can they be?

The img tags are all pulling straight from http://www.paypal.com - a surefire way to get your site spotted in an instant i the URL becomes spread around.

I'll just forward them to this URL, save me from having to type out all the info again

ATNO/TW

Super Moderator

Posts: 23458

Loc: Woodbridge VA

3+ Months Ago

That's what I did, basically. I reported it as well.

ATNO/TW

Super Moderator

Posts: 23458

Loc: Woodbridge VA

3+ Months Ago

hee-hee..that's too funny, Axe ... your screen cap shows a copyright of 1999-2003, but PayPal's current copyright on their website is through 2004 as should be. That setup was done last year sometime.

IH8Purple

Guru

Posts: 1215

Loc: Somewhere on Google Earth

3+ Months Ago

he he he now to have some fun

removed

auto submit 1000 times should do it

//Edit -- as funny as that was please don't include stuff like that in the future. I'm sure there's a few who'd like to join you in the fun -- but that's not our way. Let's do it legit. -- Atno

IH8Purple

Guru

Posts: 1215

Loc: Somewhere on Google Earth

3+ Months Ago

AH HA, another thing I noticed that would give the site away is that it is not secure. no little lock

IH8Purple

Guru

Posts: 1215

Loc: Somewhere on Google Earth

3+ Months Ago

ANTO: I would still do it the legit way... but it would be nice to clog up the logs of this person by getting the same info popped in there every 10 seconds.

after all I am assuming that this person would take the logs and run off with them somewhere. since that means that he most likely will not get caught, I think that he should atleast have to have a annoying log to sort through before he can start stealing people's money. And perhaps the extra added time would give some poor soul the time needed to change his/her address.

after all if there is one thing I'm good at, it's being annoying

vetofunk

A SEO GUY

Posts: 2245

Loc: Chicago

3+ Months Ago

The problem is all of us are more inclined to be suspicious and see these things. Its the average Paypal user I fear for.

bluedragon

Proficient

Posts: 453

3+ Months Ago

Funny just submitted using my own points program and it crashed their server lol but its back up I should "hack" them (hacking not meaning hacking but could mean hacking)

Axe

Genius

Posts: 5738

Loc: Sub-level 28

3+ Months Ago

ATNO/TW wrote:

hee-hee..that's too funny, Axe ... your screen cap shows a copyright of 1999-2003, but PayPal's current copyright on their website is through 2004 as should be. That setup was done last year sometime.

You know, I noticed that one too

CazpianXI

Proficient

Posts: 285

3+ Months Ago

I need to be so careful when making purchases or giving out personl info.

This is a good wake-up call.

joebert

Fart Bubbles

Posts: 13506

Loc: Florida

3+ Months Ago

I just checked this out and got a white screen with this

Quote:

We are sorry for the security problem. please stop reporting this server to our isp.I have stoped the bad person from scamming paypal customers. Please excuse me. It was my fault. i gave access to the wrong person.

Axe

Genius

Posts: 5738

Loc: Sub-level 28

3+ Months Ago

lmao, that isn't going to stand up in court

Nucleo

SausagePorkPie

Posts: 2296

Loc: UK - England

3+ Months Ago

tell me about it...
thats no way to say sorry

joebert

Fart Bubbles

Posts: 13506

Loc: Florida

3+ Months Ago

"Anything you say can and will be used against you in a court of law."
Even if they had no idea that it was happening the poor shmuck would have been better off deleting the thing and saying nothing at all